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CLAIMS 

1 i. A method for trusting sites in a communication 

2 network, comprising: 
(a) providing a policy being responsive to input 

credentials for verifying at least two 
declarations; each one of said at least two 
declarations is associated with at least one 

7 symbol; 

8 (b) a user accessing a site through a communication 

9 network; ; 
(c) providing through said communication network a 

credential indicative of at least two 

12 declarations about the site; 

13 (d) authenticating the site and testing said 

14 credential against the policy in order to verify 

15 said at least two declarations and displaying in 

16 respect of each verified declaration the 

17 corresponding at least one symbol. 

1 2. The method according to Claim 1, wherein said 

2 policy includes role assignment module associated with 

3 role policy; and wherein said testing stipulated in said 

4 step (d) includes: 

5 i) mapping a subject in said credential that 

6 corresponds to said site to roles according 

7 to said role policy; 

8 ii) in the case that said subject is mapped to 

9 role that corresponds to said declaration the 

10 latter declaration is verified and said at 

11 least one symbol is displayed. 
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1 3. The method according to Claim 1, wherein each 

2 declaration in said step (d) corresponds to a respective 

3 symbol, 

4 4. The method according to Claim 1, wherein said 

5 communication network includes the Internet. 

1 5. The method according to Claim 1, wherein at least 

2 one of said symbol is proxy or user configured, 

1 6. The method according to Claim 1, wherein said 

2 authenticating step includes applying an SSL 

3 authenticating protocol. 

1 7. The method according to claim 1, wherein said at 

2 least one symbol is displayed in a trusted pane. 

1 8. The method according to Claim 7, wherein in the 

2 case that said at least one declaration is verified as 

3 stipulated in said step (d) , said displaying step 

4 includes: displaying in a two pane mode at least one 

5 original site page in a first pane from among said two 

6 panes and said at least said one symbol in a trusted pane 

7 from among said trusted pane. 

e 9, The method according to Claim 1, wherein a 

9 declaration that corresponds to one of said symbols being 

10 that the site is sex free. 

1 10. The method according to Claim 1, wherein a 

2 declaration that corresponds to one of said symbols being 

3 that the site is violence free. 

1 11. The method according to Claim 1, wherein said 

2 credential being a certificate or certificate chain. 

1 12- A method for trusting sites in a communication 

2 network, comprising: 

3 (a) providing an advanced policy being responsive to 

4 input credentials for verifying at least one 

5 declaration; each one of said at least one 

6 declaration is associated with at least one 

7 symbol; 
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8 (b) a user accessing a site through a communication 

9 network; 

10 (c) authenticating the site; 

H (d) providing through said communication network at 

12 least one credential indicative of at least one 

13 declaration about the site; 

14 (e) testing said at least one credential against the 

15 advanced policy in order to verify at least one 

16 declaration from among said at least one 

17 declaration and displaying in respect of each 

18 verified declaration the corresponding at least 

19 one symbol. 

1 13. The method according to Claim 12, wherein said 

2 policy includes role assignment module associated with 

3 role policy; and wherein said testing stipulated in said 

4 step (d) includes: 

5 i) mapping a subject in said credential that 

6 corresponds to said site to roles according 

7 to said role policy; 

8 ii) in the case that said subject is mapped to 

9 role that corresponds to said declaration the 

10 latter declaration is verified and said at 

11 least one symbol is displayed. 

1 14. The method according to Claim 12, wherein each 

2 declaration in said step (d) corresponds to a respective 

3 - symbol, 

1 15. The method according to Claim 12 , wherein said 

2 communication network includes the Internet. 

1 16. The method according to Claim 12, wherein at least 

2 one of said symbol is proxy or user configured. 

1 17. The method according to Claim 12, wherein said 

2 authenticating step includes applying an SSL 

3 authenticating protocol. 
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1 18. The method according to claim 12, wherein said at 

2 least one symbol is displayed in a trusted pane. 

1 19. The method according to Claim 18, wherein in the 

2 case that said at least one declaration is verified, as 

3 stipulated in said step (e) , said displaying step 

4 includes: displaying in a two pane mode at least one 

5 original site page* in a first pane from among said two 

6 panes and said at least said one symbol in a trusted pane 

7 from among said trusted pane. 

1 20. The method according to Claim 12, wherein a 

2 declaration that corresponds to one of said symbols being 

3 that the site is sex free. 

1 21. The method according to Claim 12, wherein a 

2 declaration that corresponds to one of said symbols being 

3 that the site is violent free. 

! 22. The method according to Claim 12, wherein said 

2 credential being a certificate. 

1 23. The method according to Claim 1, wherein the policy 

2 being responsive to input credentials for verifying a 

3 declaration, and wherein the symbol that corresponds to 

4 said declaration has a pre-defined unconf igurable form. 

1 24. The method according to Claim 12, wherein the 

2 policy being responsive to input credentials for 

3 verifying a declaration, and wherein the symbol that 

4 corresponds to said declaration has a pre-defined 

5 , , t unconf igurable form. 
6 

1 25. A system for trusting sites in a communication 

2 network, the communication network including a plurality 

3 of user nodes inter-linked through at least one proxy 

4 node to at least one site server, the system comprising: 

5 the proxy is associated with a policy being responsive to 

6 input certificates for verifying at least two 
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7 declarations; each of said at least one declaration is 

8 associated with at least one symbol; 

9 a user accessing from a user node, through a proxy node 
10 to a server site; 

H the server site providing to said proxy node, 

12 through said communication network, a credential 

13 indicative of at least two declarations about the site; 

14 the proxy node authenticating the site and testing 

15 said credential against the policy in order to verify 

16 said at least two declarations and displaying in respect 

17 of each verified declaration the corresponding at least 

18 one symbol. 

,1 26. Ai - system for trusting sites in a communication 

2 network, the communication network including a plurality 

. 3 of user nodes inter-linked through at least one proxy 

4 node to. at least one site server, the system comprising: 

5 the proxy is associated with an advanced policy being 

6 responsive to input certificates for verifying at least 

7 one declaration; each one of said at least one 

8 declaration is associated with at least one symbol; 

9 a user accessing from a user node, through a proxy node 

10 to a server site; 

11 the proxy node authenticating the site; 

12 the server site providing to said proxy node, 

13 through said communication network, at least one 

14 . credential indicative of at least one declaration about 

15 the site; 

16 the proxy node testing said at least one credential 

17 against the advanced policy in order to verify said at 

18 least one declarations and displaying in respect of each 

19 verified declaration the corresponding at least one 

20 symbol - 

1 27. The system according to Claim 25, wherein said 

2 user node includes a browser. 
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1 28. The system according to Claim 26, wherein said user 

2 node includes a browser, 

1 29. The system according to Claim 25 , wherein said 

2 user node being cellular telephone. 

1 30. The system according to Claim 26, wherein said 

2 user node being cellular telephone. 

1 31. The system according to Claim 25, wherein said 

2 user node being Personal Digital Assistance device. 

1 32. The system according to Claim 26, wherein said 

2 user node being Personal Digital Assistance device. 

1 33. The system according to Claim 26/ wherein the proxy 

2 node configured in response to said advanced policy, to 

3 collect additional credentials from credential 

4 repository - 

1 34. For use in the system of Claim 25, server site, 

l 35. For use in the system of Claim 25, a proxy node. 

1 36. For use in the system of Claim 25, a user node, 

l 37. For use in the system of Claim 26, server site, 

l 38. For use in the system of Claim 26, a proxy node, 

l 39. For use in the system of Claim 2 6, a user node. 
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